Hey we just released a new version of our Wordpress Theme checker - TAC (Theme Authentication Checker) v 1.1 The first release (v 1.0) had some poorly coded styling that would break down under certain circumstances, so we took care of it.
TAC: Version 1.1 (Fixes)
- Style sheet doesn’t explode any more when certain threats are detected
- Modified code snippet output to prevent interfering with page structure
- Improved styling for slightly more appealing output
2 Comments, Comment or Ping
Otto | Aug 19th, 2008
Interesting idea. I had considered something along these lines, but I was thinking about a more generic approach, by detecting the obfuscated code directly, not looking for the unobfuscator.
Looking at the source, I see that you’re mainly checking for “base64″. You might also want to check for “uudecode” or “uuencode” as these can also hide code in the same manner. See the convert_uudecode() function in PHP.
You might also check for “urldecode” too. It can’t hide code, but it can be used to make it less obvious.
admin | Aug 20th, 2008
OTTO,
Thanks for that information. We are adding that to the plug-in in the next few days.
Reply to “TAC v1.1 Released (Minor Fixes)”